The DevSecOps Talks Podcast
by Mattias Hemmingsson, Julien Bisconti and Andrey Devyatkin
Is this your podcast?Insights from recent episode analysis
Audience Interest
Podcast Focus
Publishing Consistency
Platform Reach
Insights are generated by CastFox AI using publicly available data, episode content, and proprietary models.
Most discussed topics
Brands & references
Est. Listeners
Insufficient chart data. Estimates will improve as the show charts.
- Per-Episode Audience
Est. listeners per new episode within ~30 days
N/A🎙 ~2x weekly·97 episodes·Last published 1w ago - Monthly Reach
Unique listeners across all episodes (30 days)
N/A - Active Followers
Loyal subscribers who consistently listen
N/A
Market Insights
Platform Distribution
Reach across major podcast platforms, updated hourly
Total Followers
—
Total Plays
—
Total Reviews
—
* Data sourced directly from platform APIs and aggregated hourly across all major podcast directories.
On the show
From 14 epsHosts
Recent guests
Recent episodes
#103 - European Cloud Sovereignty with Mark Shine, Pawel Piwosz and Filipe Berti
Jun 14, 2026
56m 19s
#102 - The 90-Day Patch Window Is Dead With Ian Amit And Matias Madou
Jun 5, 2026
51m 19s
#101 - Infrastructure as Code in 2026: Still Essential or Already Changing?
Jun 4, 2026
38m 26s
#100 - 100 Episodes Later: What Still Matters in DevSecOps
May 7, 2026
40m 45s
#99 - AI SRE and the End of 3 AM On-Call
Apr 28, 2026
48m 21s
Social Links & Contact
Official channels & resources
Official Website
Login
RSS Feed
Login
| Date | Episode | Topics | Guests | Brands | Places | Keywords | Sponsor | Length | |
|---|---|---|---|---|---|---|---|---|---|
| 6/14/26 | #103 - European Cloud Sovereignty with Mark Shine, Pawel Piwosz and Filipe Berti | Mark Shine, Pawel Piwosz, and Filipe Berti discuss why the default choice of AWS, Azure, or GCP is no longer automatic for every team. The conversation covers cost, managed services, open source, AI workloads, and what European cloud providers can offer instead. We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 56m 19s | ||||||
| 6/5/26 | #102 - The 90-Day Patch Window Is Dead With Ian Amit And Matias Madou✨ | AI and securitypatch management+3 | Ian AmitMatias Madou | Mythos Preview | — | AIpatches+4 | — | 51m 19s | |
| 6/4/26 | #101 - Infrastructure as Code in 2026: Still Essential or Already Changing?✨ | Infrastructure as CodeDevSecOps+4 | — | GitOpsKubernetes | — | Infrastructure as CodeIaC+5 | — | 38m 26s | |
| 5/7/26 | #100 - 100 Episodes Later: What Still Matters in DevSecOps✨ | DevSecOpsinfrastructure as code+5 | — | DevSecOps Talks | — | DevSecOpsinfrastructure as code+5 | — | 40m 45s | |
| 4/28/26 | #99 - AI SRE and the End of 3 AM On-Call✨ | AIincident response+3 | PaulinaBirol Yildiz | — | — | AISRE+3 | — | 48m 21s | |
| 4/21/26 | #98 - Beyond AI SRE✨ | AI SREDevOps talent shortage+3 | Andrey | AWSDevSecOps Talks | — | AI SREDevOps+5 | — | 37m 10s | |
| 4/15/26 | #97 - Shift Left, Get Hacked: Supply Chain Attacks Hit Devs✨ | supply chain attacksdeveloper security+3 | — | Python | — | supply chainsecurity+5 | — | 35m 36s | |
| 4/1/26 | #96 - Keeping Platforms Simple and Fast with Joachim Hill-Grannec✨ | platform engineeringtrunk-based development+3 | Joachim Hill-Grannec | Peltek | — | platform bloatcycle time+3 | — | 48m 44s | |
| 3/23/26 | #95 - From Platform Theater to Golden Guardrails with Steve Wade✨ | Kubernetesplatform engineering+3 | Steve Wade | Platform Fix | — | Kubernetesplatform theater+3 | — | 45m 44s | |
| 3/11/26 | #94 - Small Tasks, Big Wins: The AI Dev Loop at System Initiative✨ | AI-assisted software developmenthuman-in-the-loop work+4 | Paul Stack | System Initiative | — | AIDevSecOps+6 | — | 52m 42s | |
Want analysis for the episodes below?Free for Pro Submit a request, we'll have your selected episodes analyzed within an hour. Free, at no cost to you, for Pro users. | |||||||||
| 3/5/26 | #93 - The DevSecOps Perspective: Key Takeaways From Re:Invent 2025✨ | AWS securityVPC Encryption Controls+5 | — | BorisAWS | — | AWS re:Inventsecurity+5 | — | 27m 30s | |
| 2/20/26 | #92 - From System Initiative to SWAMP: Agent-Native Infra with Paul Stack✨ | automationAI agents+4 | Paul Stack | System InitiativeSWAMP+2 | — | SWAMPSystem Initiative+8 | — | 47m 55s | |
| 2/4/26 | #91 - January security roundup: CVSS 10 in n8n, self-hosted AI scares, and nonstop patching✨ | securityAI+4 | — | n8nDevSecOps Talks | — | CVSS 10n8n+5 | — | 44m 01s | |
| 1/19/26 | #90 - K8s vs Managed Services: Cost, Lock-In, and Reality✨ | Kubernetesmanaged services+4 | — | KubernetesDevSecOps Talks | — | Kubernetesmanaged services+5 | — | 51m 44s | |
| 1/5/26 | #89 - Agents, Reviews, and Secrets: Real Talk on AI in Dev✨ | AI in developmentDevSecOps+3 | — | DevSecOps Talks | — | AIDevSecOps+6 | — | 34m 01s | |
| 12/22/25 | #88 - EU Compliance 101: DSA, MiCA explained | Which parts of AI Act, NIS2, DORA, and DSA overlap so you can cover more with less? What basics raise your baseline fast: central logs, backups, risk assessments, and human-in-the-loop governance? Could a simple mailing list make incident comms painless? We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 30m 56s | ||||||
| 12/8/25 | #87 - EU Compliance 101: AI Act, DORA, NIS2 explained | Want a quick map of EU compliance for engineers? How do you classify AI by risk and tell users when AI is used? When do you send a 24-hour heads-up and a one-month report after an incident? Does NIS2 make your board liable and your logs mandatory? We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 38m 20s | ||||||
| 11/21/25 | #86 - MCP plugins: your next security blind spot? | Is MCP just another server you need to threat model, patch, and monitor? How do you keep users from over-privileged access, block LLM injection, and stop blind spots? We unpack the VentureBeat article https://venturebeat.com/security/mcp-stacks-have-a-92-exploit-probability-how-10-plugins-became-enterprise with real-world tips. We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 1h 04m 54s | ||||||
| 10/23/25 | #85 - Is It Time for OpenTofu? Our HashiConf Takeaways | We break down 10 years of HashiConf and this year's Terraform-heavy news. What do Terraform Actions with Ansible, Stacks GA, and HCP-only features mean for day two work? Is open source getting left behind, and is OpenTofu worth a look? We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 30m 46s | ||||||
| 9/30/25 | #84 - AI for DevSecOps: Current Wins and Ongoing Gaps | Can AI really help us build more secure software? What’s working in practice right now, and where do the tools still fall short? Mattias and Paulina share their views. We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 35m 22s | ||||||
| 9/17/25 | #83 - Opentofu Vs Terraform: Where We Are Now With Cole Bittel | It’s been a while since OpenTofu was released to the public, so we wanted to check in on where it stands today. How is the community adopting it? What’s the public sentiment? And how does it differ from Terraform in terms of features? This time we’re joined by Cole Bittel, an experienced SRE, platform engineer, and contributor to OpenTofu. He shares his hands-on experience migrating to OpenTofu, and we look into the problems teams face with infrastructure as code and how both Terraform and OpenTofu approach solving them. We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. DevSecOps Talks podcast LinkedIn page DevSecOps Talks podcast website DevSecOps Talks podcast YouTube channel | 38m 45s | ||||||
| 8/25/25 | #82 - Tools, Mcps, And Attack Scenarios | This time we talk about how LLMs use tools and what the Model Context Protocol (MCP) brings to the table. What are the risks? How can an attacker exploit MCPs? And why are LLMs a bit like grandpas — helpful but forgetful? We are always happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners.DevSecOps Talks podcast LinkedIn pageDevSecOps Talks podcast websiteDevSecOps Talks podcast YouTube channel | 36m 57s | ||||||
| 6/30/25 | #81 - Keeping Secrets Safe | Still pasting tokens into Slack? What types of secrets are at risk, and which tools fit which consumer—humans, CI/CD, or workloads? Where do most teams stumble, and how do you fix it fast? Hear our no-nonsense checklist. Connect with us on LinkedIn or X (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. The video version of this episode is available on our YouTube channel LinkedIn page of the DevSecOps Talks team is here | 33m 35s | ||||||
| 5/21/25 | #80 - Understanding Passkeys: Benefits And Limitations | Passkeys are gaining attention as a new way to log in without passwords. How do they work, and how do they compare to traditional multi-factor authentication (MFA)? In this episode, we explore the history of passwords, the strengths and weaknesses of common MFA methods, and the potential of passkeys to enhance security. What threats do passkeys mitigate, and what still remain? Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. | 36m 55s | ||||||
| 4/23/25 | #79 - Going Local: What’S Driving The Move? | Andrey, Paulina, and Mattias kick off a miniseries on European infrastructure. We talk about infrastructure providers' options across Europe, ask what really drives the move away from hyperscalers, and wonder whether the trade-offs make sense for most teams. Connect with us on LinkedIn or Twitter (see info at https://devsecops.fm/about/). We are happy to answer any questions, hear suggestions for new episodes, or hear from you, our listeners. | 20m 31s | ||||||
Showing 25 of 100
Pitch Fit is a Pro feature
See how bookable this show is for guests, which brands already advertise, the per-episode ad value, and the best-fit guest and sponsor profile. The numbers are blurred on the free plan.
How readily this show books outside guests like you.
How proven this show is for host-read sponsorships.
For Guests
ProFor Advertisers
ProUpgrade to Pro to unlock guest cadence, sponsor categories, fit scores, and per-episode ad value for this show.